Sensitive data-at-rest is secured in the NotifyLink database using AES encryption algorithms. The seed, from which the database encryption key is generated, is stored in a database table. Starting with version 4.7.0, NotifyLink Enterprise Servers use a 256 bit encryption key size to encrypt user information in the database.
Encrypted database information includes:
• Passwords
• User Encryption Key
• Authentication Password
• Email, Calendar, Contacts, and Task content
The NotifyLink database component itself is secured using built-in SQL Server security features. By default, NotifyLink creates a single SQL Server login with access to the NotifyLink database. Permissions can be set within SQL Server, as desired, to access the database by other SQL Server logins or by using Windows Authentication.